Overview

overview

10

Static

static

10

2.dll

windows7-x64

5

2.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2.dll

  • Size

    1.0MB

  • Sample

    220824-pjnatsecf8

  • MD5

    c52b327c6765a62ffa74d9e5f7822a2b

  • SHA1

    326ff037174d75bf9659fe32ab2345d2a9bf0454

  • SHA256

    91a309b9e82a9b7c37be50ecd41252cc548f6e7bc1861c7b5b4d10c133f6e493

  • SHA512

    04da5d479646c198751330c395f4789d6f6c5848bf53d9e13f6e4bba80a1fb9f810fac61848bd650f39988da14dc2bd265ec3eaed27c85c63b436eca3353beee

  • SSDEEP

    24576:PPbd7OXoxkXTfxUXIeUu3MWXA0FaRaayXd0:0ocTxUXX35XbFivyX

Score
10/10
bumblebee1508

Malware Config

Extracted

Family

bumblebee

Botnet

1508

C2

14.31.207.132:221

81.9.92.42:167

119.76.18.11:355

247.159.224.202:444

32.19.91.214:383

18.218.236.32:451

108.65.214.104:154

170.120.41.104:472

210.95.71.224:141

120.24.53.94:203

202.135.147.121:128

81.59.225.7:315

86.229.107.229:329

28.48.215.169:349

147.85.196.182:247

100.43.226.160:468

147.59.173.194:351

202.9.44.255:464

254.156.153.57:206

81.112.174.32:153
rc4.plain

Targets

    • Target

      2.dll

    • Size

      1.0MB

    • MD5

      c52b327c6765a62ffa74d9e5f7822a2b

    • SHA1

      326ff037174d75bf9659fe32ab2345d2a9bf0454

    • SHA256

      91a309b9e82a9b7c37be50ecd41252cc548f6e7bc1861c7b5b4d10c133f6e493

    • SHA512

      04da5d479646c198751330c395f4789d6f6c5848bf53d9e13f6e4bba80a1fb9f810fac61848bd650f39988da14dc2bd265ec3eaed27c85c63b436eca3353beee

    • SSDEEP

      24576:PPbd7OXoxkXTfxUXIeUu3MWXA0FaRaayXd0:0ocTxUXX35XbFivyX

    Score
    5/10

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks